Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-97xf-5qr7-4cw3

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью

Описание

Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities that are vulnerable to the use of an attacker-controlled string in the construction of SQL queries. An attacker could extract user credentials, read or modify information, and remotely execute code.

Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities that are vulnerable to the use of an attacker-controlled string in the construction of SQL queries. An attacker could extract user credentials, read or modify information, and remotely execute code.

Ссылки

EPSS

Процентиль: 82%
0.01682
Низкий

CVE ID

CVE-2020-14497

Связанные уязвимости

nvd логотип

CVE-2020-14497

CVSS3: 9.8
nvd
больше 5 лет назад

Advantech iView, versions 5.6 and prior, contains multiple SQL injection vulnerabilities that are vulnerable to the use of an attacker-controlled string in the construction of SQL queries. An attacker could extract user credentials, read or modify information, and remotely execute code.

EPSS

Процентиль: 82%
0.01682
Низкий

CVE ID

CVE-2020-14497